ProHoster > Блог > Whakahaerenga > Te whakatu Minio kia taea e te kaiwhakamahi te mahi me tana ake peere

Te whakatu Minio kia taea e te kaiwhakamahi te mahi me tana ake peere

Ko Minio he toa ahanoa ngawari, tere, AWS S3. I hangaia a Minio ki te manaaki i nga raraunga kaore i hangaia penei i nga whakaahua, nga ataata, nga konae takiuru, nga taapiri. Kei te tautoko hoki te minio i te aratau tohatoha, e whakarato ana i te kaha ki te hono i nga kōpae maha ki te tūmau rokiroki ahanoa, tae atu ki era kei runga i nga miihini rereke.

Ko te kaupapa o tenei pou he whirihora i te minio kia taea e ia kaiwhakamahi te mahi me tana ake peere anake.

I te nuinga o te waa, he pai te Minio mo nga keehi e whai ake nei:

  • te rokiroki kore-taurua i runga ake o te punaha konae pono me te uru ma te S3 (te rokiroki iti me te reo e whakahaerehia ana i runga i te NAS me te SAN);
  • te rokiroki kore-whakaritea i runga ake o te punaha konae kore pono me te uru S3 (mo te whanaketanga me te whakamatautau);
  • te rokiroki me te tukuruatanga i runga i te roopu iti o nga kaimau i roto i te whatanga kotahi me te uru ma te kawa S3 (te rokiroki ngoikore me te rohe rahunga e rite ana ki te whatanga).

I runga i nga punaha RedHat ka honoa e matou te putunga Minio kore mana.

yum -y install yum-plugin-copr
yum copr enable -y lkiesow/minio
yum install -y minio minio-mc

Hangaia ka taapiri atu ki te MINIO_ACCESS_KEY me te MINIO_SECRET_KEY ki /etc/minio/minio.conf.

# Custom username or access key of minimum 3 characters in length.
MINIO_ACCESS_KEY=

# Custom password or secret key of minimum 8 characters in length.
MINIO_SECRET_KEY=

Mena kaore koe e whakamahi i te nginx i mua i a Minio, katahi koe ka huri.

--address 127.0.0.1:9000

i runga i

--address 0.0.0.0:9000

Kia whakarewahia a Minio.

systemctl start minio

Ka hangaia e matou he hononga ki a Minio ko myminio.

minio-mc config host add myminio http://localhost:9000 MINIO_ACCESS_KEY 
MINIO_SECRET_KEY

Waihangahia he peere user1bucket.

minio-mc mb myminio/user1bucket

Waihangahia he peere user2bucket.

minio-mc mb myminio/user2bucket

Waihangatia he kōnae kaupapa here user1-policy.json.

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Action": [
        "s3:PutBucketPolicy",
        "s3:GetBucketPolicy",
        "s3:DeleteBucketPolicy",
        "s3:ListAllMyBuckets",
        "s3:ListBucket"
      ],
      "Effect": "Allow",
      "Resource": [
        "arn:aws:s3:::user1bucket"
      ],
      "Sid": ""
    },
    {
      "Action": [
        "s3:AbortMultipartUpload",
        "s3:DeleteObject",
        "s3:GetObject",
        "s3:ListMultipartUploadParts",
        "s3:PutObject"
      ],
      "Effect": "Allow",
      "Resource": [
        "arn:aws:s3:::user1bucket/*"
      ],
      "Sid": ""
    }
  ]
}

Waihangatia he kōnae kaupapa here user2-policy.json.

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Action": [
        "s3:PutBucketPolicy",
        "s3:GetBucketPolicy",
        "s3:DeleteBucketPolicy",
        "s3:ListAllMyBuckets",
        "s3:ListBucket"
      ],
      "Effect": "Allow",
      "Resource": [
        "arn:aws:s3:::user2bucket"
      ],
      "Sid": ""
    },
    {
      "Action": [
        "s3:AbortMultipartUpload",
        "s3:DeleteObject",
        "s3:GetObject",
        "s3:ListMultipartUploadParts",
        "s3:PutObject"
      ],
      "Effect": "Allow",
      "Resource": [
        "arn:aws:s3:::user2bucket/*"
      ],
      "Sid": ""
    }
  ]
}

Waihangahia he kaiwhakamahi kaiwhakamahi1 me te kupuhipa test12345.

minio-mc admin user add myminio user1 test12345

Waihangahia he kaiwhakamahi kaiwhakamahi2 me te kupuhipa test54321.

minio-mc admin user add myminio user2 test54321

Ka hangaia e matou he kaupapa here i roto i te Minio e kiia ana ko te user1-policy mai i te konae user1-policy.json.

minio-mc admin policy add myminio user1-policy user1-policy.json

Ka hangaia e matou he kaupapa here i roto i te Minio e kiia ana ko te user2-policy mai i te konae user2-policy.json.

minio-mc admin policy add myminio user2-policy user2-policy.json

Hoatu te kaupapa here-kaiwhakamahi1 ki te kaiwhakamahi kaiwhakamahi1.

minio-mc admin policy set myminio user1-policy user=user1

Hoatu te kaupapa here-kaiwhakamahi2 ki te kaiwhakamahi kaiwhakamahi2.

minio-mc admin policy set myminio user2-policy user=user2

Te tirotiro i te hononga o nga kaupapa here ki nga kaiwhakamahi

minio-mc admin user list myminio

Ko te tirotiro i te hononga o nga kaupapa here ki nga kaiwhakamahi ka penei te ahua

enabled    user1                 user1-policy
enabled    user2                 user2-policy

Mo te whakamarama, haere ma te tirotiro ki te wahitau http://ip-сервера-где-запущен-minio:9000/minio/

Ka kite matou i hono matou ki te Minio i raro i te MINIO_ACCESS_KEY=kaiwhakamahi1. Kei te waatea te peere user1bucket ki a maatau.

Te whakatu Minio kia taea e te kaiwhakamahi te mahi me tana ake peere

Kaore e taea te hanga peere, na te mea kaore he Mahi e rite ana ki te kaupapa here.

Te whakatu Minio kia taea e te kaiwhakamahi te mahi me tana ake peere

Me hanga he konae ki te peere user1bucket.

Te whakatu Minio kia taea e te kaiwhakamahi te mahi me tana ake peere

Me hono tatou ki te Minio i raro i te MINIO_ACCESS_KEY=kaiwhakamahi2. Kei te waatea te peere user2bucket ki a maatau.

A kaore matou e kite i te user1bucket me nga konae mai i te user1bucket.

Te whakatu Minio kia taea e te kaiwhakamahi te mahi me tana ake peere

I hangaia he korerorero Telegram ma te whakamahi i te Minio https://t.me/minio_s3_ru

Source: will.com